Skip to main content

Compliance Job

The Compliance Job serves the purpose of configuring compliance rules, encompassing factors such as operating system version, online connectivity to the SureMDM server, and battery levels on devices. It enables administrators to proactively initiate designated actions, such as blacklisting devices or performing data wipes, in response to identified non-compliance. This job empowers administrators to establish alerts and notifications for prompt detection of these vulnerabilities.

To create a Compliance Job and deploy it to the enrolled device(s) or group(s) remotely, follow these steps:

1.  Navigate to SureMDM Web Console > Jobs > New Job > macOS > Compliance Jobs.

2.  In the Compliance Job prompt, enter a Job Name. 

3.  Select an option from the below list to create compliance rules and click Configure.

OptionDescription
OS VersionDefine compliance rules based on the operating system version of the device.
Online Device ConnectivitySet compliance conditions based on the device’s connection status with the SureMDM server.
BatteryConfigure compliance rules based on the device’s battery percentage.
System Health ComplianceCreate compliance rules based on the device’s internal temperature and battery health.
Device StorageSet compliance thresholds based on available or used storage on the device.
Device EncryptionDefine rules to ensure device encryption is enabled and compliant.
Device UptimeMonitor and set compliance based on the continuous uptime duration of the device.
Application PolicySpecify apps to be blocklisted or allowlisted as part of compliance enforcement.
Hardware ChangeConfigure rules to detect and respond to hardware modifications.
Firewall PolicyCreate rules ensuring device compliance with firewall settings and policies.

4.  Under Out of Compliance Actions, select the appropriate action from the following when the compliance rules are violated:

Option NameDescription
Send MessageSend a custom message to the SureMDM Console.
Move to BlocklistMove the device to the blocklist to restrict its access.
Wipe the DeviceRemotely wipe all data from the device.
Lock DeviceRemotely lock the device to prevent unauthorized usage.
E-mail NotificationSend an email alert to the configured recipient(s).
Apply JobApply a predefined job to the device for remediation.
Send SMSSend an SMS to the device’s registered number.

5.  Click Add Action to add additional Out of Compliance Actions.

6.  Click Save.

     The newly created job will be listed in the Jobs List section. 

7.  Go back to Home tab and select the macOS device(s) or group(s).

8.  Click Apply to launch the Apply Job/Profile To Device prompt .

9.  In the Apply Job/Profile To Device prompt, select the job and click Apply.